Lucene search
K

9 matches found

EUVD
EUVD
added yesterday8 views

EUVD-2026-36319

OpenClaw: Fake package roots could influence memory-core artifact loading...

7.8CVSS5.8AI score0.00114EPSS
Exploits0References3
NVD
NVD
added 2026/06/11 9:16 p.m.8 views

CVE-2026-53813

OpenClaw before 2026.4.25 contains a path traversal vulnerability in memory-core artifact loading where workspace state influences local package root resolution. Attackers with access to affected workspaces can load memory-core artifacts from unintended local locations, potentially executing...

7.8CVSS0.00114EPSS
Exploits0References2
CVE
CVE
added 2026/06/11 8:8 p.m.16 views

CVE-2026-53813

OpenClaw is vulnerable prior to version 2026.4.25 due to a path traversal in memory-core artifact loading where workspace state influences local package root resolution. Attackers with access to affected workspaces can load memory-core artifacts from unintended local locations, potentially execut...

7.8CVSS5.5AI score0.00114EPSS
Exploits0References2Affected Software1
Cvelist
Cvelist
added 2026/06/11 8:8 p.m.31 views

CVE-2026-53813 OpenClaw < 2026.4.25 - Arbitrary Artifact Loading via Fake Package Root Resolution

OpenClaw before 2026.4.25 contains a path traversal vulnerability in memory-core artifact loading where workspace state influences local package root resolution. Attackers with access to affected workspaces can load memory-core artifacts from unintended local locations, potentially executing...

7.8CVSS0.00114EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2026/06/11 8:8 p.m.10 views

CVE-2026-53813 OpenClaw < 2026.4.25 - Arbitrary Artifact Loading via Fake Package Root Resolution

OpenClaw before 2026.4.25 contains a path traversal vulnerability in memory-core artifact loading where workspace state influences local package root resolution. Attackers with access to affected workspaces can load memory-core artifacts from unintended local locations, potentially executing...

7.8CVSS5.3AI score0.00114EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2026/06/11 12:0 a.m.15 views

PT-2026-48743

Name of the Vulnerable Software and Affected Versions OpenClaw versions prior to 2026.4.25 Description A path traversal issue exists in the memory-core artifact loading process, where the workspace state affects how the local package root is resolved. This allows attackers with access to affected...

7.8CVSS5.5AI score0.00114EPSS
Exploits0References7
NVD
NVD
added 2026/04/30 10:16 p.m.3 views

CVE-2026-7551

HKUDS OpenHarness contains a remote code execution vulnerability in the /bridge slash command that allows remote senders accepted by configuration to execute arbitrary operating system commands. Attackers can invoke the /bridge spawn command with attacker-controlled command text that is forwarded...

8.8CVSS0.00649EPSS
Exploits1References3
Cvelist
Cvelist
added 2026/04/30 9:29 p.m.33 views

CVE-2026-7551 HKUDS OpenHarness Remote Command Execution via /bridge Slash Command

HKUDS OpenHarness contains a remote code execution vulnerability in the /bridge slash command that allows remote senders accepted by configuration to execute arbitrary operating system commands. Attackers can invoke the /bridge spawn command with attacker-controlled command text that is forwarded...

8.8CVSS0.00649EPSS
Exploits1References3
EUVD
EUVD
added 2026/04/30 9:29 p.m.5 views

EUVD-2026-26451

HKUDS OpenHarness contains a remote code execution vulnerability in the /bridge slash command that allows remote senders accepted by configuration to execute arbitrary operating system commands. Attackers can invoke the /bridge spawn command with attacker-controlled command text that is forwarded...

8.8CVSS6.7AI score0.00649EPSS
Exploits1References3
Rows per page
Query Builder